$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/1/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.cer File: 08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.cer (raw, json) Hash identifier: 8fE1lhX/2NTt66MlSNgLHWW4hJwvRoXpad8vs/v7Kjo= Subject key identifier: 08:A0:3C:F9:C1:D3:AF:93:CF:DB:0A:2C:1D:87:8D:A6:02:75:D4:FE Authority key identifier: DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D Certificate issuer: /CN=A91BDB290000/serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Certificate serial: 479FDC9D0362864286CA76D16BFC64D5119E116F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Manifest: rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.mft caRepository: rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/ Notify URL: https://rrdp.twnic.tw/rrdp/notification.xml Certificate not before: Mon 11 May 2026 15:57:01 +0000 Certificate not after: Mon 10 May 2027 16:02:01 +0000 Subordinate resources: IP: 103.37.4.0/23 IP: 2400:bfa0::/32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:9f:dc:9d:03:62:86:42:86:ca:76:d1:6b:fc:64:d5:11:9e:11:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000, serialNumber=DA632505767413A1409A3E33B99D256CDFB1901D Validity Not Before: May 11 15:57:01 2026 GMT Not After : May 10 16:02:01 2027 GMT Subject: CN=08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:6a:03:78:83:24:de:68:e4:af:de:00:af:29: b2:ce:a8:21:ca:14:fa:a5:73:2a:d4:dc:71:a4:65: ef:9f:61:28:92:e2:15:3b:2e:ed:d3:43:08:77:3e: 77:24:94:60:26:df:e1:8a:55:08:4c:66:61:75:da: 7b:f5:b3:6c:c7:68:14:7a:f7:74:62:d8:30:ad:9b: bc:7a:22:1c:c1:61:8a:ce:f2:57:74:26:c9:c1:d1: 73:78:a3:f9:2f:4b:86:f6:c6:07:52:4a:bd:cc:18: a8:b7:83:9f:fc:5e:ac:ab:94:07:89:ec:41:01:74: a6:05:bd:fc:0e:88:4b:bc:99:fc:73:90:d6:ca:d0: c2:cd:d7:d4:76:b1:c4:f7:54:36:56:95:bc:f8:e0: 9b:e8:7d:cf:c9:81:de:d4:b7:36:bd:ef:61:49:b7: 14:b6:25:72:0f:84:89:9a:da:f8:56:74:32:18:ef: 97:b2:29:b3:76:a3:9f:27:4d:6e:15:fa:2d:a1:76: f6:9f:6e:a4:5a:30:4c:0b:7f:52:09:15:81:ca:d8: e4:44:ce:01:16:44:04:c2:1f:26:f3:00:93:1b:0d: f7:fe:c9:09:76:f6:b6:84:5a:d0:68:79:28:31:66: 5c:51:d9:8f:06:4c:16:44:66:c6:e2:19:02:02:12: 2e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 08:A0:3C:F9:C1:D3:AF:93:CF:DB:0A:2C:1D:87:8D:A6:02:75:D4:FE X509v3 Authority Key Identifier: keyid:DA:63:25:05:76:74:13:A1:40:9A:3E:33:B9:9D:25:6C:DF:B1:90:1D X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer Subject Information Access: CA Repository - URI:rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/ RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.37.4.0/23 IPv6: 2400:bfa0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:38:26:fd:91:1d:b4:01:ab:5e:dd:33:2b:16:c9:89:f7:2b: b6:6e:5e:47:1b:98:11:6d:74:3a:c9:a1:eb:0c:c8:dc:06:5a: 3d:61:ca:98:8e:f8:63:8a:67:92:fb:50:c2:4b:88:78:6b:76: c9:9a:78:6e:8c:b9:dd:57:67:08:f5:9e:e0:52:a7:83:b8:7b: 06:e3:04:0b:93:6f:e3:84:79:a0:83:08:e8:a3:1a:5c:9e:56: 35:86:9c:d5:cc:f0:e5:03:e4:3e:ec:fe:6b:9b:92:a0:ad:7e: f5:6b:a3:48:48:d1:b7:12:77:5d:33:f8:63:6d:92:21:25:a8: 5d:96:29:6f:8c:f0:6f:1c:f4:68:28:0e:b5:52:57:a2:ca:cb: 02:55:24:08:b8:7b:06:2e:e5:89:23:08:10:8a:4c:00:01:fe: 14:37:d9:fd:cc:f1:48:cb:79:5d:10:94:02:23:a0:32:58:1b: d1:31:06:5e:79:63:30:52:73:92:2d:35:72:9d:73:32:fc:17: aa:d8:b8:a6:aa:b7:d4:64:08:88:1e:37:ca:6d:90:6f:7f:03: fe:ea:87:78:49:48:53:e3:65:f4:c2:ef:76:2c:dd:44:2f:c7: 09:25:88:12:27:0e:c8:51:a3:d2:a4:51:c8:8b:6b:43:5d:94: 54:81:bc:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIUR5/cnQNihkKGynbRa/xk1RGeEW8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQkRCMjkwMDAwMTEwLwYDVQQFEyhEQTYzMjUwNTc2 NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFEMB4XDTI2MDUxMTE1NTcwMVoX DTI3MDUxMDE2MDIwMVowMzExMC8GA1UEAxMoMDhBMDNDRjlDMUQzQUY5M0NGREIw QTJDMUQ4NzhEQTYwMjc1RDRGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI1qA3iDJN5o5K/eAK8pss6oIcoU+qVzKtTccaRl759hKJLiFTsu7dNDCHc+ dySUYCbf4YpVCExmYXXae/WzbMdoFHr3dGLYMK2bvHoiHMFhis7yV3QmycHRc3ij +S9LhvbGB1JKvcwYqLeDn/xerKuUB4nsQQF0pgW9/A6IS7yZ/HOQ1srQws3X1Hax xPdUNlaVvPjgm+h9z8mB3tS3Nr3vYUm3FLYlcg+EiZra+FZ0Mhjvl7Ips3ajnydN bhX6LaF29p9upFowTAt/UgkVgcrY5ETOARZEBMIfJvMAkxsN9/7JCXb2toRa0Gh5 KDFmXFHZjwZMFkRmxuIZAgISLgECAwEAAaOCAncwggJzMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAigPPnB06+Tz9sKLB2HjaYCddT+MB8GA1UdIwQYMBaAFNpj JQV2dBOhQJo+M7mdJWzfsZAdMA4GA1UdDwEB/wQEAwIBBjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvMS9EQTYz MjUwNTc2NzQxM0ExNDA5QTNFMzNCOTlEMjU2Q0RGQjE5MDFELmNybDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8ybU1sQlha MEU2RkFtajR6dVowbGJOLXhrQjAuY2VyMIHfBggrBgEFBQcBCwSB0jCBzzAzBggr BgEFBQcwBYYncnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TTVRSVENILzAv MF8GCCsGAQUFBzAKhlNyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NNVFJU Q0gvMC8wOEEwM0NGOUMxRDNBRjkzQ0ZEQjBBMkMxRDg3OERBNjAyNzVENEZFLm1m dDA3BggrBgEFBQcwDYYraHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAvbm90aWZp Y2F0aW9uLnhtbDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEH AQH/BB8wHTAMBAIAATAGAwQBZyUEMA0EAgACMAcDBQAkAL+gMA0GCSqGSIb3DQEB CwUAA4IBAQAOOCb9kR20Aate3TMrFsmJ9yu2bl5HG5gRbXQ6yaHrDMjcBlo9YcqY jvhjimeS+1DCS4h4a3bJmnhujLndV2cI9Z7gUqeDuHsG4wQLk2/jhHmggwjooxpc nlY1hpzVzPDlA+Q+7P5rm5KgrX71a6NISNG3EnddM/hjbZIhJahdlilvjPBvHPRo KA61UleiyssCVSQIuHsGLuWJIwgQikwAAf4UN9n9zPFIy3ldEJQCI6AyWBvRMQZe eWMwUnOSLTVynXMy/Beq2LimqrfUZAiIHjfKbZBvfwP+6od4SUhT42X0wu92LN1E L8cJJYgSJw7IUaPSpFHIi2tDXZRUgbxp -----END CERTIFICATE-----Generated at Tue May 12 22:45:53 2026 by rpki-client